Patch Scan Help Information

Patch Scans are done frequently and show what server patches and updates are not loaded. It also classifies them as critical, high, medium, or low and gives information about their security implications and how to fix the issues. The Patch Scan sections of OpenRMF^® Professional are listed below for more information.

Explaining Patch Scans

Patch Scans and their results are used to track update and vulnerability issues within operating system patches. To view more detailed information visit the Patch Scan Explained Help.

Loading Patch Scans

To have OpenRMF^® Professional use the patch scan data, you must currently load an ACAS/Nessus scan .nessus file or Rapid7 Nexpose Full Audit w/o Web Spider .xml file into the specific system package and allow it to process the data. To view more detailed information visit the Loading Patch Scans Help.

Viewing Patch Scans

You can view the patch scans and the patch scan score information off the system package page. This will list all devices/servers and their scores as well as the individual plugins/patches that are causing the issues. To view more detailed information visit the Viewing Patch Scans Help.

Explaining Patch Score

Patch Scan data also generates a score, specifically a System Patch Scan Score. This shows the number of items that are problems with operating system patches in your system package and their severity. To view more detailed information visit the Patch Scan Score Explained Help.

Managing Ports, Protocols and Services (PPSM)

Patch Scans record all port, protocol, and service that is actively found on each device. This data is recorded and put into the report results for scans. OpenRMF^® Professional automatically pulls that PPSM data per device and records it for use and management. You can view the PPSM data and also record what boundaries it crosses if any, for inbound and outbound. To view more detailed information visit the Patch Scan PPPSM Help.

Managing Hardware Assets

Patch Scans record all devices found when run on your network. This device listing is saved to a Hardware listing that lets you manage this list and record other information such as description, purpose, and firmware information. You also can add your own hardware manually for things not automatically found in your scan. To view more detailed information visit the Patch Scan Hardware Listing Help.

Managing Software Assets

Patch Scans record all software found when run on your network. This software listing is saved to a Software list inside your system package for managing and reporting. You also can add your own software listing for those items not automatically found during the scan. To view more detailed information visit the Patch Scan Software Listing Help.

Host Scan Dashboard

The Host Scan Dashboard shows major numbers as far as open vulnerabilities, types of vulnerabilities, and patch scores visually with charts and graphs versus a table view. To view more detailed information visit the System Package Host Scan Dashboard Help.